[SECURITY] Fedora 34 Update: golang-github-appc-docker2aci-0.17.2-8.fc34

Docker2aci is a small library and CLI binary that converts Docker images to A CI. It takes as input either a file generated by "docker save" or a Docker regist ry URL. It gets all the layers of a Docker image and squashes them into an ACI image. Optionally, it can generate one ACI for each layer,...

[SECURITY] Fedora 35 Update: golang-github-spf13-cobra-1.4.0-2.fc35

Cobra is a library providing a simple interface to create powerful modern CLI interfaces similar to git & go tools. Cobra is also an application that will generate your application scaffolding to rapidly develop a Cobra-based application. Cobra provides: - Easy subcommand-based CLIs: app server,...

Cisco Firepower Threat Defense Software XML Injection Vulnerability

A vulnerability in CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to inject XML into the command parser. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including crafted input in commands...

@antora/cli (>=2.3.2 <=3.0.0-alpha.9), @antora/playbook-builder (>=2.3.2 <=3.0.0-alpha.9) +54 more potentially affected by CVE-2022-21190 +1 more via convict (>=6.0.0 <=6.2.2)

convict NPM version =6.0.0, =2.3.2, =2.3.2, =2.3.2, =1.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.7.0 and more Source cves: CVE-2022-21190, CVE-2022-22143 Source advisory: SNYK:JS-CONVICT-2774757...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.10.10 bug fix and security update

Red Hat OpenShift Container Platform release 4.10.10 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10. Red Hat Product Security has rated this update as having a...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.10.10 security and extras update

Red Hat OpenShift Container Platform release 4.10.10 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10. Red Hat Product Security has rated this update as having a...

Security Bulletin: IBM Cloud Kubernetes Service is affected by a containerd security vulnerability (CVE-2022-24769)

Summary IBM Cloud Kubernetes Service is affected by a security vulnerability found in containerd where containers were incorrectly started with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to...

CVE-2022-20716

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modifying certain files on...

Design/Logic Flaw

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a low-privileged user to exploit this...

CVE-2022-20739 Cisco SD-WAN vManage Software Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a low-privileged user to exploit this...

CVE-2022-20739 Cisco SD-WAN vManage Software Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a low-privileged user to exploit this...

CVE-2022-20716 Cisco SD-WAN Solution Improper Access Control Vulnerability

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modifying certain files on...

OSV-2022-346 Heap-buffer-overflow in cli_sigopts_handler

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46680 Crash type: Heap-buffer-overflow READ 1 Crash state: clisigoptshandler readdbparseldbsubsignature loadoneldb...

Cisco IOS XE Elevation of Privilege Vulnerability (CNVD-2022-55150)

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices.Cisco IOS XE has an elevation of privilege vulnerability, which stems from a user executing certain CLI commands without adequately verifying user privileges, and can be exploited by attackers to cause elevation...

Cisco SD-WAN Elevation of Privilege Vulnerability

Cisco SD-WAN is a highly secure cloud-scale architecture from Cisco USA that is open, programmable, and scalable. an elevation of privilege vulnerability exists in Cisco SD-WAN, which stems from an incorrect programmatic call to a high-level native procedure. An attacker could exploit the...

OSV-2022-340 Heap-buffer-overflow in cli_ac_addsig

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46646 Crash type: Heap-buffer-overflow READ 2 Crash state: cliacaddsig cliaddcontentmatchpattern readdbparseldbsubsignature...

CVE-2022-27506

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI...

CVE-2022-27506

CVE-2022-27506 is a hard-coded credentials flaw that allows administrators to access the SD-WAN shell via the CLI. The issue affects Citrix SD-WAN Center Management Console (before 11.4.3), Citrix SD-WAN Standard/Premium Edition Appliance (before 11.4.1), and Citrix SD-WAN Orchestrator for On-Pre...

CVE-2022-27506

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI...

Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and Catalyst 9000 Family Wireless Controllers Privilege Escalation Vulnerability

May 12, 2022 Update: The information in the Cisco Software Checker "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x" was not complete when this advisory was first published. Customers should use the form in the Fixed Software "fs" section of this advisory to get the latest...